From owner-freebsd-security Sun Apr 6 00:26:41 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id AAA01349 for security-outgoing; Sun, 6 Apr 1997 00:26:41 -0800 (PST) Received: from unique.usn.blaze.net.au (unique.usn.blaze.net.au [203.17.53.17]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA01329; Sun, 6 Apr 1997 00:26:25 -0800 (PST) Received: (from davidn@localhost) by unique.usn.blaze.net.au (8.8.5/8.8.5) id SAA00461; Sun, 6 Apr 1997 18:25:42 +1000 (EST) Message-ID: <19970406182542.49014@usn.blaze.net.au> Date: Sun, 6 Apr 1997 18:25:42 +1000 From: David Nugent To: Darren Reed Cc: hackers@FreeBSD.ORG, security@FreeBSD.ORG Subject: Re: root logins on secure tty's ? References: <199704011422.GAA03481@freefall.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.61 In-Reply-To: <199704011422.GAA03481@freefall.freebsd.org>; from Darren Reed on Apr 04, 1997 at 12:17:28AM Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Apr 04, 1997 at 12:17:28AM, Darren Reed wrote: > for some reason, in 2.2.1 source, /bin/login root logins appear > to be broken on secure tty's. Yes, known problem and the fix is already in the tree. That breakage which only existed for something less than 2 days was just very poor timing. :-( > in my ttys, I enable ttyv1 as secure, rootok == 1 and I get prompted > for a password. The intention of the code was to always ask for a password if a root login is attempted if the tty is not secure. Unfortunately, you have to invert the logic to get the correct result. > Is this (perhaps) a leftover from the breakin earlier in the year ? No. Regards, David Nugent - Unique Computing Pty Ltd - Melbourne, Australia Voice +61-3-9791-9547 Data/BBS +61-3-9792-3507 3:632/348@fidonet davidn@freebsd.org davidn@blaze.net.au http://www.blaze.net.au/~davidn/